docker.io/crowdsecurity/crowdsec:v1.7.8 linux/amd64

docker.io/crowdsecurity/crowdsec:v1.7.8 - Trivy安全扫描结果 扫描时间: 2026-06-15 13:58
全部漏洞信息
低危漏洞:23 中危漏洞:32 高危漏洞:15 严重漏洞:0

系统OS: alpine 3.23.4 扫描引擎: Trivy 扫描时间: 2026-06-15 13:58

docker.io/crowdsecurity/crowdsec:v1.7.8 (alpine 3.23.4) (alpine)
低危漏洞:21 中危漏洞:11 高危漏洞:4 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
libcrypto3 CVE-2026-45447 高危 3.5.6-r0 3.5.7-r0 openssl: Heap Use-After-Free in OpenSSL PKCS7_verify()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45447

镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1

发布日期: 2026-06-09 17:17 修改: 2026-06-10 15:16
libssl3 CVE-2026-45447 高危 3.5.6-r0 3.5.7-r0 openssl: Heap Use-After-Free in OpenSSL PKCS7_verify()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45447

镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1

发布日期: 2026-06-09 17:17 修改: 2026-06-10 15:16
rsync CVE-2026-29518 高危 3.4.2-r0 3.4.3-r0 rsync: TOCTOU symlink race condition allowing local privilege escalation in daemon mode without chroot.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29518

镜像层: sha256:204411cace148ae478868213656c663f16f7709feaa000abe8b08f25e54ab582

发布日期: 2026-05-20 13:16 修改: 2026-05-26 16:16
rsync CVE-2026-43618 高危 3.4.2-r0 3.4.3-r0 rsync: rsync: Remote memory disclosure via integer overflow in compressed-token decoding

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-43618

镜像层: sha256:204411cace148ae478868213656c663f16f7709feaa000abe8b08f25e54ab582

发布日期: 2026-05-20 02:16 修改: 2026-05-21 20:34
libcrypto3 CVE-2026-45445 中危 3.5.6-r0 3.5.7-r0 openssl: AES-OCB IV Ignored on EVP_Cipher() Path

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45445

镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1

发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
libcrypto3 CVE-2026-34182 中危 3.5.6-r0 3.5.7-r0 openssl: CMS AuthEnvelopedData Processing May Accept Forged Messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34182

镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1

发布日期: 2026-06-09 17:17 修改: 2026-06-10 17:16
libssl3 CVE-2026-34182 中危 3.5.6-r0 3.5.7-r0 openssl: CMS AuthEnvelopedData Processing May Accept Forged Messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34182

镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1

发布日期: 2026-06-09 17:17 修改: 2026-06-10 17:16
libssl3 CVE-2026-34183 中危 3.5.6-r0 3.5.7-r0 openssl: Unbounded Memory Growth in the QUIC PATH_CHALLENGE Handler

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34183

镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1

发布日期: 2026-06-09 17:17 修改: 2026-06-10 16:17
libssl3 CVE-2026-42764 中危 3.5.6-r0 3.5.7-r0 openssl: NULL pointer dereference in QUIC server initial packet handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42764

镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1

发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
libssl3 CVE-2026-45445 中危 3.5.6-r0 3.5.7-r0 openssl: AES-OCB IV Ignored on EVP_Cipher() Path

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45445

镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1

发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
libcrypto3 CVE-2026-34183 中危 3.5.6-r0 3.5.7-r0 openssl: Unbounded Memory Growth in the QUIC PATH_CHALLENGE Handler

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34183

镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1

发布日期: 2026-06-09 17:17 修改: 2026-06-10 16:17
libcrypto3 CVE-2026-42764 中危 3.5.6-r0 3.5.7-r0 openssl: NULL pointer dereference in QUIC server initial packet handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42764

镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1

发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
rsync CVE-2026-43617 中危 3.4.2-r0 3.4.3-r0 rsync: rsync: Hostname-based ACL bypass in daemon chroot configuration

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-43617

镜像层: sha256:204411cace148ae478868213656c663f16f7709feaa000abe8b08f25e54ab582

发布日期: 2026-05-20 02:16 修改: 2026-05-21 20:54
rsync CVE-2026-43619 中危 3.4.2-r0 3.4.3-r0 rsync: rsync: Symlink race vulnerability allows unauthorized file operations

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-43619

镜像层: sha256:204411cace148ae478868213656c663f16f7709feaa000abe8b08f25e54ab582

发布日期: 2026-05-20 02:16 修改: 2026-05-21 20:42
rsync CVE-2026-43620 中危 3.4.2-r0 3.4.3-r0 rsync: rsync: Remote Denial of Service via Out-of-bounds Read

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-43620

镜像层: sha256:204411cace148ae478868213656c663f16f7709feaa000abe8b08f25e54ab582

发布日期: 2026-05-20 02:16 修改: 2026-05-21 20:47
libcrypto3 CVE-2026-34180 低危 3.5.6-r0 3.5.7-r0 openssl: OpenSSL: Heap buffer over-read in ASN.1 decoding can lead to denial of service or information disclosure.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34180

镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1

发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
libcrypto3 CVE-2026-34181 低危 3.5.6-r0 3.5.7-r0 openssl: PKCS#12 Files with PBMAC1 Are Accepted with Short HMAC Keys

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34181

镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1

发布日期: 2026-06-09 17:17 修改: 2026-06-10 17:16
libcrypto3 CVE-2026-42766 低危 3.5.6-r0 3.5.7-r0 openssl: Possible NULL Dereference in Password-Based CMS Decryption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42766

镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1

发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
libcrypto3 CVE-2026-42767 低危 3.5.6-r0 3.5.7-r0 openssl: NULL Pointer Dereference in CRMF EncryptedValue Decryption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42767

镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1

发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
libcrypto3 CVE-2026-42768 低危 3.5.6-r0 3.5.7-r0 openssl: Multi-RecipientInfo Bleichenbacher Oracle in CMS_decrypt() and PKCS7_decrypt()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42768

镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1

发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
libssl3 CVE-2026-34180 低危 3.5.6-r0 3.5.7-r0 openssl: OpenSSL: Heap buffer over-read in ASN.1 decoding can lead to denial of service or information disclosure.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34180

镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1

发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
libssl3 CVE-2026-34181 低危 3.5.6-r0 3.5.7-r0 openssl: PKCS#12 Files with PBMAC1 Are Accepted with Short HMAC Keys

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34181

镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1

发布日期: 2026-06-09 17:17 修改: 2026-06-10 17:16
libssl3 CVE-2026-42766 低危 3.5.6-r0 3.5.7-r0 openssl: Possible NULL Dereference in Password-Based CMS Decryption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42766

镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1

发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
libssl3 CVE-2026-42767 低危 3.5.6-r0 3.5.7-r0 openssl: NULL Pointer Dereference in CRMF EncryptedValue Decryption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42767

镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1

发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
libssl3 CVE-2026-42768 低危 3.5.6-r0 3.5.7-r0 openssl: Multi-RecipientInfo Bleichenbacher Oracle in CMS_decrypt() and PKCS7_decrypt()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42768

镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1

发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
libssl3 CVE-2026-42769 低危 3.5.6-r0 3.5.7-r0 openssl: Trust-Anchor Substitution via cert/issuer Typo in CMP rootCaKeyUpdate

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42769

镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1

发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
libssl3 CVE-2026-42770 低危 3.5.6-r0 3.5.7-r0 openssl: FFC-DH Peer Validation Uses Attacker-Supplied q

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42770

镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1

发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
libssl3 CVE-2026-45446 低危 3.5.6-r0 3.5.7-r0 openssl: Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45446

镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1

发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
libssl3 CVE-2026-7383 低危 3.5.6-r0 3.5.7-r0 openssl: OpenSSL: Heap buffer overflow due to signed integer overflow in Unicode output sizing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7383

镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1

发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
libssl3 CVE-2026-9076 低危 3.5.6-r0 3.5.7-r0 openssl: OpenSSL: Denial of Service due to heap out-of-bounds read in CMS password-based decryption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9076

镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1

发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
libcrypto3 CVE-2026-42769 低危 3.5.6-r0 3.5.7-r0 openssl: Trust-Anchor Substitution via cert/issuer Typo in CMP rootCaKeyUpdate

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42769

镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1

发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
libcrypto3 CVE-2026-42770 低危 3.5.6-r0 3.5.7-r0 openssl: FFC-DH Peer Validation Uses Attacker-Supplied q

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42770

镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1

发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
libcrypto3 CVE-2026-45446 低危 3.5.6-r0 3.5.7-r0 openssl: Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45446

镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1

发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
libcrypto3 CVE-2026-7383 低危 3.5.6-r0 3.5.7-r0 openssl: OpenSSL: Heap buffer overflow due to signed integer overflow in Unicode output sizing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7383

镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1

发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
libcrypto3 CVE-2026-9076 低危 3.5.6-r0 3.5.7-r0 openssl: OpenSSL: Denial of Service due to heap out-of-bounds read in CMS password-based decryption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9076

镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1

发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
rsync CVE-2026-45232 低危 3.4.2-r0 3.4.3-r0 rsync: Rsync: Denial of Service via malformed HTTP proxy response

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45232

镜像层: sha256:204411cace148ae478868213656c663f16f7709feaa000abe8b08f25e54ab582

发布日期: 2026-05-20 02:16 修改: 2026-05-21 20:52
usr/local/bin/crowdsec (gobinary)
低危漏洞:1 中危漏洞:3 高危漏洞:2 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
github.com/jackc/pgproto3/v2 CVE-2026-32286 高危 v2.3.3 github.com/jackc/pgproto3/v2: github.com/jackc/pgproto3/v2: Denial of Service via malicious PostgreSQL server

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32286

镜像层: sha256:095c383d4d4c0e5db7dd962e7c36cac201584f1ab826135ecb6515239806254d

发布日期: 2026-03-26 20:16 修改: 2026-06-03 14:28
stdlib CVE-2026-42504 高危 v1.26.3 1.25.11, 1.26.4 Decoding a maliciously-crafted MIME header containing many invalid enc ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42504

镜像层: sha256:095c383d4d4c0e5db7dd962e7c36cac201584f1ab826135ecb6515239806254d

发布日期: 2026-06-02 23:16 修改: 2026-06-04 16:15
github.com/quic-go/quic-go CVE-2026-40898 中危 v0.57.0 0.59.1 quic-go is an implementation of the QUIC protocol in Go. Prior to vers ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40898

镜像层: sha256:095c383d4d4c0e5db7dd962e7c36cac201584f1ab826135ecb6515239806254d

发布日期: 2026-06-04 19:16 修改: 2026-06-05 21:08
stdlib CVE-2026-27145 中危 v1.26.3 1.25.11, 1.26.4 *x509.Certificate).VerifyHostname previously called matchHostnames in ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27145

镜像层: sha256:095c383d4d4c0e5db7dd962e7c36cac201584f1ab826135ecb6515239806254d

发布日期: 2026-06-02 23:16 修改: 2026-06-04 16:15
stdlib CVE-2026-42507 中危 v1.26.3 1.25.11, 1.26.4 When returning errors, functions in the net/textproto package would in ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42507

镜像层: sha256:095c383d4d4c0e5db7dd962e7c36cac201584f1ab826135ecb6515239806254d

发布日期: 2026-06-02 23:16 修改: 2026-06-04 16:15
github.com/jackc/pgx/v4 CVE-2026-41889 低危 v4.18.3 github.com/jackc/pgx: golang: pgx: SQL injection via specific SQL query conditions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41889

镜像层: sha256:095c383d4d4c0e5db7dd962e7c36cac201584f1ab826135ecb6515239806254d

发布日期: 2026-05-08 17:16 修改: 2026-05-21 19:58
usr/local/bin/cscli (gobinary)
低危漏洞:1 中危漏洞:3 高危漏洞:2 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
github.com/jackc/pgproto3/v2 CVE-2026-32286 高危 v2.3.3 github.com/jackc/pgproto3/v2: github.com/jackc/pgproto3/v2: Denial of Service via malicious PostgreSQL server

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32286

镜像层: sha256:095c383d4d4c0e5db7dd962e7c36cac201584f1ab826135ecb6515239806254d

发布日期: 2026-03-26 20:16 修改: 2026-06-03 14:28
stdlib CVE-2026-42504 高危 v1.26.3 1.25.11, 1.26.4 Decoding a maliciously-crafted MIME header containing many invalid enc ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42504

镜像层: sha256:095c383d4d4c0e5db7dd962e7c36cac201584f1ab826135ecb6515239806254d

发布日期: 2026-06-02 23:16 修改: 2026-06-04 16:15
github.com/quic-go/quic-go CVE-2026-40898 中危 v0.57.0 0.59.1 quic-go is an implementation of the QUIC protocol in Go. Prior to vers ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40898

镜像层: sha256:095c383d4d4c0e5db7dd962e7c36cac201584f1ab826135ecb6515239806254d

发布日期: 2026-06-04 19:16 修改: 2026-06-05 21:08
stdlib CVE-2026-27145 中危 v1.26.3 1.25.11, 1.26.4 *x509.Certificate).VerifyHostname previously called matchHostnames in ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27145

镜像层: sha256:095c383d4d4c0e5db7dd962e7c36cac201584f1ab826135ecb6515239806254d

发布日期: 2026-06-02 23:16 修改: 2026-06-04 16:15
stdlib CVE-2026-42507 中危 v1.26.3 1.25.11, 1.26.4 When returning errors, functions in the net/textproto package would in ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42507

镜像层: sha256:095c383d4d4c0e5db7dd962e7c36cac201584f1ab826135ecb6515239806254d

发布日期: 2026-06-02 23:16 修改: 2026-06-04 16:15
github.com/jackc/pgx/v4 CVE-2026-41889 低危 v4.18.3 github.com/jackc/pgx: golang: pgx: SQL injection via specific SQL query conditions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41889

镜像层: sha256:095c383d4d4c0e5db7dd962e7c36cac201584f1ab826135ecb6515239806254d

发布日期: 2026-05-08 17:16 修改: 2026-05-21 19:58
usr/local/bin/yq (gobinary)
低危漏洞:0 中危漏洞:2 高危漏洞:1 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
stdlib CVE-2026-42504 高危 v1.26.3 1.25.11, 1.26.4 Decoding a maliciously-crafted MIME header containing many invalid enc ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42504

镜像层: sha256:095c383d4d4c0e5db7dd962e7c36cac201584f1ab826135ecb6515239806254d

发布日期: 2026-06-02 23:16 修改: 2026-06-04 16:15
stdlib CVE-2026-27145 中危 v1.26.3 1.25.11, 1.26.4 *x509.Certificate).VerifyHostname previously called matchHostnames in ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27145

镜像层: sha256:095c383d4d4c0e5db7dd962e7c36cac201584f1ab826135ecb6515239806254d

发布日期: 2026-06-02 23:16 修改: 2026-06-04 16:15
stdlib CVE-2026-42507 中危 v1.26.3 1.25.11, 1.26.4 When returning errors, functions in the net/textproto package would in ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42507

镜像层: sha256:095c383d4d4c0e5db7dd962e7c36cac201584f1ab826135ecb6515239806254d

发布日期: 2026-06-02 23:16 修改: 2026-06-04 16:15
usr/local/lib/crowdsec/plugins/notification-email (gobinary)
低危漏洞:0 中危漏洞:2 高危漏洞:1 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
stdlib CVE-2026-42504 高危 v1.26.3 1.25.11, 1.26.4 Decoding a maliciously-crafted MIME header containing many invalid enc ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42504

镜像层: sha256:88d0dc8107e42d08c7196da4479ec87ce025c262bd884312761ac6ee1ed39d80

发布日期: 2026-06-02 23:16 修改: 2026-06-04 16:15
stdlib CVE-2026-27145 中危 v1.26.3 1.25.11, 1.26.4 *x509.Certificate).VerifyHostname previously called matchHostnames in ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27145

镜像层: sha256:88d0dc8107e42d08c7196da4479ec87ce025c262bd884312761ac6ee1ed39d80

发布日期: 2026-06-02 23:16 修改: 2026-06-04 16:15
stdlib CVE-2026-42507 中危 v1.26.3 1.25.11, 1.26.4 When returning errors, functions in the net/textproto package would in ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42507

镜像层: sha256:88d0dc8107e42d08c7196da4479ec87ce025c262bd884312761ac6ee1ed39d80

发布日期: 2026-06-02 23:16 修改: 2026-06-04 16:15
usr/local/lib/crowdsec/plugins/notification-file (gobinary)
低危漏洞:0 中危漏洞:2 高危漏洞:1 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
stdlib CVE-2026-42504 高危 v1.26.3 1.25.11, 1.26.4 Decoding a maliciously-crafted MIME header containing many invalid enc ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42504

镜像层: sha256:88d0dc8107e42d08c7196da4479ec87ce025c262bd884312761ac6ee1ed39d80

发布日期: 2026-06-02 23:16 修改: 2026-06-04 16:15
stdlib CVE-2026-27145 中危 v1.26.3 1.25.11, 1.26.4 *x509.Certificate).VerifyHostname previously called matchHostnames in ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27145

镜像层: sha256:88d0dc8107e42d08c7196da4479ec87ce025c262bd884312761ac6ee1ed39d80

发布日期: 2026-06-02 23:16 修改: 2026-06-04 16:15
stdlib CVE-2026-42507 中危 v1.26.3 1.25.11, 1.26.4 When returning errors, functions in the net/textproto package would in ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42507

镜像层: sha256:88d0dc8107e42d08c7196da4479ec87ce025c262bd884312761ac6ee1ed39d80

发布日期: 2026-06-02 23:16 修改: 2026-06-04 16:15
usr/local/lib/crowdsec/plugins/notification-http (gobinary)
低危漏洞:0 中危漏洞:2 高危漏洞:1 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
stdlib CVE-2026-42504 高危 v1.26.3 1.25.11, 1.26.4 Decoding a maliciously-crafted MIME header containing many invalid enc ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42504

镜像层: sha256:88d0dc8107e42d08c7196da4479ec87ce025c262bd884312761ac6ee1ed39d80

发布日期: 2026-06-02 23:16 修改: 2026-06-04 16:15
stdlib CVE-2026-27145 中危 v1.26.3 1.25.11, 1.26.4 *x509.Certificate).VerifyHostname previously called matchHostnames in ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27145

镜像层: sha256:88d0dc8107e42d08c7196da4479ec87ce025c262bd884312761ac6ee1ed39d80

发布日期: 2026-06-02 23:16 修改: 2026-06-04 16:15
stdlib CVE-2026-42507 中危 v1.26.3 1.25.11, 1.26.4 When returning errors, functions in the net/textproto package would in ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42507

镜像层: sha256:88d0dc8107e42d08c7196da4479ec87ce025c262bd884312761ac6ee1ed39d80

发布日期: 2026-06-02 23:16 修改: 2026-06-04 16:15
usr/local/lib/crowdsec/plugins/notification-sentinel (gobinary)
低危漏洞:0 中危漏洞:2 高危漏洞:1 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
stdlib CVE-2026-42504 高危 v1.26.3 1.25.11, 1.26.4 Decoding a maliciously-crafted MIME header containing many invalid enc ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42504

镜像层: sha256:88d0dc8107e42d08c7196da4479ec87ce025c262bd884312761ac6ee1ed39d80

发布日期: 2026-06-02 23:16 修改: 2026-06-04 16:15
stdlib CVE-2026-27145 中危 v1.26.3 1.25.11, 1.26.4 *x509.Certificate).VerifyHostname previously called matchHostnames in ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27145

镜像层: sha256:88d0dc8107e42d08c7196da4479ec87ce025c262bd884312761ac6ee1ed39d80

发布日期: 2026-06-02 23:16 修改: 2026-06-04 16:15
stdlib CVE-2026-42507 中危 v1.26.3 1.25.11, 1.26.4 When returning errors, functions in the net/textproto package would in ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42507

镜像层: sha256:88d0dc8107e42d08c7196da4479ec87ce025c262bd884312761ac6ee1ed39d80

发布日期: 2026-06-02 23:16 修改: 2026-06-04 16:15
usr/local/lib/crowdsec/plugins/notification-slack (gobinary)
低危漏洞:0 中危漏洞:3 高危漏洞:1 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
stdlib CVE-2026-42504 高危 v1.26.3 1.25.11, 1.26.4 Decoding a maliciously-crafted MIME header containing many invalid enc ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42504

镜像层: sha256:88d0dc8107e42d08c7196da4479ec87ce025c262bd884312761ac6ee1ed39d80

发布日期: 2026-06-02 23:16 修改: 2026-06-04 16:15
github.com/slack-go/slack GHSA-gxhx-2686-5h9g 中危 v0.23.0 0.23.1 slack-go `SecretsVerifier` accepts empty signing secret without precondition

漏洞详情: https://github.com/advisories/GHSA-gxhx-2686-5h9g

镜像层: sha256:88d0dc8107e42d08c7196da4479ec87ce025c262bd884312761ac6ee1ed39d80

发布日期: 2026-05-14 20:52 修改: 2026-05-14 20:52
stdlib CVE-2026-27145 中危 v1.26.3 1.25.11, 1.26.4 *x509.Certificate).VerifyHostname previously called matchHostnames in ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27145

镜像层: sha256:88d0dc8107e42d08c7196da4479ec87ce025c262bd884312761ac6ee1ed39d80

发布日期: 2026-06-02 23:16 修改: 2026-06-04 16:15
stdlib CVE-2026-42507 中危 v1.26.3 1.25.11, 1.26.4 When returning errors, functions in the net/textproto package would in ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42507

镜像层: sha256:88d0dc8107e42d08c7196da4479ec87ce025c262bd884312761ac6ee1ed39d80

发布日期: 2026-06-02 23:16 修改: 2026-06-04 16:15
usr/local/lib/crowdsec/plugins/notification-splunk (gobinary)
低危漏洞:0 中危漏洞:2 高危漏洞:1 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
stdlib CVE-2026-42504 高危 v1.26.3 1.25.11, 1.26.4 Decoding a maliciously-crafted MIME header containing many invalid enc ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42504

镜像层: sha256:88d0dc8107e42d08c7196da4479ec87ce025c262bd884312761ac6ee1ed39d80

发布日期: 2026-06-02 23:16 修改: 2026-06-04 16:15
stdlib CVE-2026-27145 中危 v1.26.3 1.25.11, 1.26.4 *x509.Certificate).VerifyHostname previously called matchHostnames in ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27145

镜像层: sha256:88d0dc8107e42d08c7196da4479ec87ce025c262bd884312761ac6ee1ed39d80

发布日期: 2026-06-02 23:16 修改: 2026-06-04 16:15
stdlib CVE-2026-42507 中危 v1.26.3 1.25.11, 1.26.4 When returning errors, functions in the net/textproto package would in ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42507

镜像层: sha256:88d0dc8107e42d08c7196da4479ec87ce025c262bd884312761ac6ee1ed39d80

发布日期: 2026-06-02 23:16 修改: 2026-06-04 16:15